In this final installment of our bonus series Understanding GRC, we explore the practical side of adopting GRC tools. From the limits of spreadsheets to the advantages of integrated platforms, this episode highlights what to look for in a solution, how ROI is measured, and why phasing in processes with a “crawl, walk, run” approach sets organizations up for long-term success.

In our second bonus episode, we dig into the first steps of building a GRC program with our expert Lily Yeoh. We cover why it starts with people, process, and technology, and the importance of documenting what you’re protecting. You’ll hear how to make policies meaningful instead of just templates, when to bring in expert guidance, and how to get leadership buy-in. We also touch on the real risks of skipping GRC, from regulatory fines to reputation loss.

In our first bonus episode, we kick things off with the fundamentals: What does GRC really stand for, and how do governance, risk, and compliance actually work together? We’ll also look at why GRC is a framework every business can benefit from.

Yiping Sun is a leader within Plante Moran’s cybersecurity compliance group. Her expertise includes SOC, ISO 27001, STAR, DPR, and more. She’s a CPA, a CISA, and one of the most trusted voices in cyber audit.

In this episode, Yiping takes us inside the real world of audit. She speaks with Lily Yeoh about her career path in cybersecurity, breaking down what an effective audit truly looks like—and why it’s far more than just checking boxes.

In this episode, guest host John Paul Tran sits down with Lily Yeoh, CEO of C1Risk, to hear her hot takes on recent GRC events. They dive into insider threats such as the Coinbase hacking, public sector risks, and why faster, smarter governance is more critical than ever.

Terry served as a senior leader in the US government; her career in public service includes Director at the Secretary of Defense for Intelligence (USDI) and Deputy Director of Naval Intelligence. She’s led Military Intelligence Programs and the global defense, information-warfare, and technology strategies.

Today, Lily Yeoh is joined by Patrick Sullivan who brings over 25 years of experience in IT security and compliance, making him a trusted voice on AI governance and the new standard ISO 42001. He also provides insights into the work of ISO’s SC 42 subcommittee, which is shaping global standards for AI, including governance, ethics, and trustworthiness—making this essential knowledge for anyone engaged with AI technologies.

Join C1Risk's CEO, Lily Yeoh and Joe Sullivan as they delve into the confluence of GenAI and Cybersecurity at Ilta Evolve 2024